vulnerability

Oracle Solaris 11: CVE-2019-17451: Vulnerability in GNU Binary Utilities

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Oct 10, 2019

Added

Jan 19, 2021

Modified

Feb 17, 2022

Description

An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c, as demonstrated by nm.

Solutions

oracle-solaris-11-4-upgrade-developer-gnu-binutils-2-33-1-11-4-18-0-1-1-0oracle-solaris-11-4-upgrade-developer-gnu-binutils-cross-i386-2-33-1-11-4-18-0-1-1-0oracle-solaris-11-4-upgrade-developer-gnu-binutils-cross-sparc-2-33-1-11-4-18-0-1-1-0

References

CVE-2019-17451
https://attackerkb.com/topics/CVE-2019-17451
https://support.oracle.com/epmos/faces/DocumentDisplay?id=1448883.1&displayIndex=1

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report